CNNVD-202508-099 Information
CNNVD ID
CNNVD-202508-099
Related CVE
- CNNVD Published: 2025-08-01
Description (Chinese)
zpanelx是The ZPanel Project开源的一个web托管控制面板。 zpanelx 10.0.0.2版本存在安全漏洞,该漏洞源于htpasswd模块输入清理不足,可能导致远程代码执行。
Description (English)
Zpanelx is a web hosting control panel at the ZPanel Project open source. Version 10.0.0.2 of zpanelx has a security loophole, which stems from the inadequate clean-up of the htpasswd module, which may lead to remote code implementation.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
The ZPanel Project
Published
2025-08-01
Last Modified
2026-02-24
References
https://www.vulncheck.com/advisories/zpanel-htpasswd-module-username-command-execution https://github.com/zpanel/zpanelx https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/zpanel_username_exec.rb http://forums.zpanelcp.com/showthread.php?27898-Serious-Remote-Execution-Exploit-in-Zpanel-10-0-0-2 https://web.archive.org/web/20130617014355/ https://access.redhat.com/security/cve/cve-2013-10053
Patch
https://github.com/zpanel/zpanelx/releases
Share on: